Self-propagating malware poisons open source software and wipes Iran-based machines

A new hacking group has been rampaging the Internet in a persistent campaign that spreads a self-propagating and never-before ...

Malware in an open-source project could have infected thousands. The twist? It was certified by Delve

The malware from a LiteLLM project was bad, but the optics stemming from Delve’s involvement are worse.
TMCnet

Minimus Launches Open Source Program, Bringing Hardened Images to Critical Infrastructure Projects

Minimus, the leader in hardened container images and secure container software, today announced the Minimus Open Source ...
SecurityWeek

Telnyx Targeted in Growing TeamPCP Supply Chain Attack

The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.
Security Boulevard

The Hidden Security Risks in Open-Source Dependencies Nobody Talks About

Open-source dependencies introduce hidden risks, from transitive vulnerabilities to supply chain attacks. Learn how to reduce ...

Nvidia bets on OpenClaw, but adds a security layer - how NemoClaw works

The company sees OpenClaw as the future of personal AI, but gives it some much-needed privacy and security help.
Opinion

The open source blind spot in our supply chains

Supply chain attacks are increasing in volume, but open source vulnerabilities continue relatively unnoticed.

Perforce 2026 State of Open Source Report Highlights Shift Toward Digital Autonomy in the EU

Fear of vendor lock-in is a top factor for moving to open source, up 68% this year compared to last year's report. MINNEAPOLIS, March 24, 2026 /PRNewswire/ -- Perforce Software, the DevOps company for ...